Launchpad CVE tracker

CVE 2011-1144

The installer in PEAR 1.9.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_dir, (3) tmp_dir, and (4) pear-build-download directories. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-1072.

Related bugs and status

CVE-2011-1144 (Candidate) is related to these bugs:

Bug #774452: php-pear: pecl install reports Call to undefined method PEAR::raiseErro()

Summary				In	Importance	Status
	774452	php-pear: pecl install reports Call to undefined method PEAR::raiseErro()		php5 (Ubuntu)	High	Fix Released
	774452	php-pear: pecl install reports Call to undefined method PEAR::raiseErro()		php	Unknown	Fix Released

Bug #776642: segfaults from 5.2.4-2ubuntu5.15

Summary				In	Importance	Status
	776642	segfaults from 5.2.4-2ubuntu5.15		php5 (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2011022...
MLIST: [oss-security] 2011030...
MLIST: [oss-security] 2011030...
MLIST: [oss-security] 2011030...
MLIST: [oss-security] 2011030...
MLIST: [oss-security] 2011030...
MISC: http://pear.php.net/bu...
XF: pear-package-symlink(6...

Launchpad.net

CVE 2011-1144

Related bugs and status

Related bugs

References